package com.sky.interceptor;

import com.sky.constant.JwtClaimsConstant;
import com.sky.context.BaseContext;
import com.sky.properties.JwtProperties;
import com.sky.utils.JwtUtil;
import io.jsonwebtoken.Claims;
import lombok.extern.slf4j.Slf4j;
import org.apache.http.HttpStatus;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.stereotype.Component;
import org.springframework.web.method.HandlerMethod;
import org.springframework.web.servlet.HandlerInterceptor;
import org.springframework.web.servlet.ModelAndView;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;

@Component
@Slf4j
public class JwtTokenUserInterceptor implements HandlerInterceptor {

	@Autowired
	private JwtProperties jwtProperties;

	@Override
	public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) throws Exception {
		//判断当前拦截到的是Controller的方法还是其他资源
		if (!(handler instanceof HandlerMethod)) {
			//当前拦截到的不是动态方法，直接放行
			return true;
		}

		//获取token  =>authentication
		String token = request.getHeader(jwtProperties.getUserTokenName());
		if (token == null || token.isEmpty()) {
			response.setStatus(HttpStatus.SC_UNAUTHORIZED);
			return false;
		}
		//验证token
		try {
			log.info("jwt校验:{}", token);
			//jwtProperties.getUserSecretKey()秘钥是 itheima
			Claims claims = JwtUtil.parseJWT(jwtProperties.getUserSecretKey(), token);
			//JwtClaimsConstant.USER_ID  为userId
			Long userId = Long.valueOf(claims.get(JwtClaimsConstant.USER_ID).toString());
			log.info("当前用户id为{}:", userId);
			//存在线程变量中，用于后面共享
			BaseContext.setCurrentId(userId);

		} catch (Exception e) {
			response.setStatus(HttpStatus.SC_UNAUTHORIZED);
			return false;
		}
		//放行
		return true;
	}

	@Override
	public void postHandle(HttpServletRequest request, HttpServletResponse response, Object handler, ModelAndView modelAndView) throws Exception {
		BaseContext.removeCurrentId();
	}
}
